Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Did something come through via cmd?


  • Please log in to reply
5 replies to this topic

#1 Wolffie03

Wolffie03

  • Members
  • 55 posts
  • OFFLINE
  •  
  • Gender:Female
  • Local time:03:04 AM

Posted 11 August 2015 - 10:17 AM

I was having a bit of a scare last night but this is what I posted on another forum, that hasn't even bothered helping me at all:

 

So I was playing the Sims 4 earlier, running it normally. Then all of a sudden, some cmd box came up with a lot of words - which I didn't get a chance to read because it was literally up for three seconds before disappearing. Then I checked the windows folder to see if maybe there was a scheduled update or something, which I'm pretty sure I didn't have scheduled." Mentions the first modified thing is a WindowsUpdate.log that finished at about 10:06 PM. (It's about 10:13 PM right now.) However, that cmd box only came up maybe about 10:00 PM? Could it be just the scheduler because I never had that happen before. My computer works fine and everything but I just want to be sure. Also, to eliminate that it might be something legitimate, I checked my HP assistant since apparently similar things happened to HP printer users. Apparently, there's a schedule for every monday at around 9PM - 10PM. I'm not sure if that's what could've prompted the CMD box to appear with words before disappearing quickly.

 

I did a virus scan last night under normal settings (no safe mode) with Malwarebytes; it didn't pick up anything. I booted in safe mode and went through certain programs like rkill, tdsskiller, hitman pro, then used Malwarebytes again. Malwarebytes did -not- pick up anything yet again. However, when I ran adwcleaner it picked this up:

 

Problem1_zpsoj5gb4cm.png

 

The log is something like this:

 

 AdwCleaner v4.203 - Logfile created 11/08/2015 at 10:08:44
# Updated 30/04/2015 by Xplode
# Database : 2015-04-30.2 [Local]
# Operating system : Windows 8.1  (x64)
# Username : Monica - SELENA
# Running from : F:\Virus Removal Stuff\adwcleaner_4.203.exe
# Option : Cleaning
 
***** [ Services ] *****
 
 
***** [ Files / Folders ] *****
 
 
***** [ Scheduled tasks ] *****
 
 
***** [ Shortcuts ] *****
 
 
***** [ Registry ] *****
 
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{0BB9651A-2DFC-4E8E-82BF-A37194E323ED}}_is1
Key Deleted : HKLM\SOFTWARE\Classes\Installer\Features\EFEE0228DC83E77358593193D847A0EC
Key Deleted : HKLM\SOFTWARE\Classes\Installer\Products\EFEE0228DC83E77358593193D847A0EC
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\EFEE0228DC83E77358593193D847A0EC
Data Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings [ProxyOverride] - <local>
 
***** [ Web browsers ] *****
 
-\\ Internet Explorer v11.0.9600.17840
 
 
-\\ Google Chrome v44.0.2403.130
 
[C:\Users\Monica\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://search.aol.com/aol/search?q={searchTerms}
[C:\Users\Monica\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://www.ask.com/web?q={searchTerms}
 
*************************
 
AdwCleaner[R0].txt - [726 bytes] - [08/05/2015 23:10:17]
AdwCleaner[R1].txt - [979 bytes] - [13/06/2015 10:56:40]
AdwCleaner[R2].txt - [1037 bytes] - [13/06/2015 22:44:28]
AdwCleaner[R3].txt - [1782 bytes] - [11/08/2015 10:06:49]
AdwCleaner[S0].txt - [1106 bytes] - [14/06/2015 00:14:07]
AdwCleaner[S1].txt - [1717 bytes] - [11/08/2015 10:08:44]
 
########## EOF - C:\AdwCleaner\AdwCleaner[S1].txt - [1776  bytes] ##########

 

 

 

 

Obviously, I hit the clean button. Again, I just want to be assured that I didn't randomly pick up a virus or anything of that sort, considering it was just random. My computer is fine as we speak but eh... :/


Edited by Wolffie03, 11 August 2015 - 10:19 AM.


BC AdBot (Login to Remove)

 


#2 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,323 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:04:04 AM

Posted 11 August 2015 - 01:00 PM

The two tools look at different things and both should be run .. That said what is your Antivirus and does it find anything?

You may want to run ESET...

cvMlKv6.pngESET Online Scanner
  • Click here to download the installer for ESET Online Scanner and save it to your Desktop.
  • Disable all your antivirus and antimalware software - see how to do that here.
  • Right click on esetsmartinstaller_enu.exe and select Run as Administrator.
  • Place a checkmark in YES, I accept the Terms of Use, then click Start. Wait for ESET Online Scanner to load its components.
  • Select Enable detection of potentially unwanted applications.
  • Click Advanced Settings, then place a checkmark in the following:
    • Remove found threats
    • Scan archives
    • Scan for potentially unsafe applications
    • Enable Anti-Stealth technology
  • Click Start to begin scanning.
  • ESET Online Scanner will start downloading signatures and scan. Please be patient, as this scan can take quite some time.
  • When the scan is done, click List threats (only available if ESET Online Scanner found something).
  • Click Export, then save the file to your desktop.
  • Click Back, then Finish to exit ESET Online Scanner.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#3 Wolffie03

Wolffie03
  • Topic Starter

  • Members
  • 55 posts
  • OFFLINE
  •  
  • Gender:Female
  • Local time:03:04 AM

Posted 11 August 2015 - 02:09 PM

My Antivirus is Malwarebytes. It hasn't picked up anything. As I'm typing this, I'm barely going through the steps that you've posted. Will let you know if something comes up.



#4 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,323 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:04:04 AM

Posted 11 August 2015 - 02:52 PM

Malware bytes is NOT an AV it's an Antimalware, that is a different thing.

Please run the ESET tool
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#5 Wolffie03

Wolffie03
  • Topic Starter

  • Members
  • 55 posts
  • OFFLINE
  •  
  • Gender:Female
  • Local time:03:04 AM

Posted 11 August 2015 - 05:15 PM

My bad. So no, I don't have an antivirus, unfortunately. In the meantime, my ESET is currently running and this is what it found for now:

 

  Problem2_zpsttc1vo2o.png

 

I'll update it if there's more that came up after the scan is done.

 

Update: The scan is done. I already exported the file/.txt but I apparently can't attach it on here. So instead, here's a picture of the .txt: 

 

Problem3_zpsxozn0vyw.png

 

Over all, I have not seen that command box pop up at all. Not even on restarting, turning off the computer then turning it back on, etc. So maybe it was just a scheduled maintenance? :/


Edited by Wolffie03, 11 August 2015 - 06:44 PM.


#6 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,323 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:04:04 AM

Posted 11 August 2015 - 08:40 PM

Perhaps it was.

L@@K here and install a free AV
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users